I understand Fortigate must do this by default but I have not found this stated in the documentation. In my case, the Fortigate-100F seems to have no TPM and even if it had the admin manual does not mention that login credentials are encrypted by the TPM. Therefore, is there any official source which confirms login credentials are encrypted in a Fortigate-100F?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
It does go into some detail about it in the hardening guides.
https://docs.fortinet.com/document/fortigate/7.2.0/best-practices/555436/hardening
Hello @jefazo92 ,
Normally your passwords are kept encrypted on fortigate.
If you have a FortiGate model with TPM support, you need to activate it. In other words, FortiGate does not store passwords on the TPM chip unless you activate it.
You can think of it like this, you have a password and you encrypted it. No one can understand it. On top of that, you wanted to increase security measures in case this password is stolen, this time you can activate TPM and store this password here.
It does go into some detail about it in the hardening guides.
https://docs.fortinet.com/document/fortigate/7.2.0/best-practices/555436/hardening
@calink that was what I was looking for! Thank you very much.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1688 | |
1087 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.